DE19710249A1 - Network-supported chip card transaction process - Google Patents

Abstract

Terminals for settling payments can be connected to a plurality of transaction partners over an open data network by a transmission process protected against manipulations, the transaction partner in question being determined from the type of transaction.

Description

Technical field

The invention relates to methods and arrangements for electronic billing of services, in particular through payments, using smart cards using open data networks.

State of the art

Cards are included to pay for services processor or memory, known as chip cards, used. Here are a number of different cards known as "Creditcard", "Debitcard", before paid cash card or as a cash card with one on loadable electronic exchange are known.

In many countries today there are money card solutions that are each developed and specified nationally; e.g. B. "Avant" in Finland, "Danmønt" in Denmark, the EC card with chip in Germany, "Quick" in Austria. This Lö solutions are incompatible with each other in terms of technology and processes patible.

The credit card organizations are currently testing solutions which are to be used internationally, e.g. B. "Visacash" from Visa, "Mondex" from Mastercard, "Clip" from Europay, "Proton" by American Express. These solutions are also incompatible with each other. Although these  Group of providers a common standard that the is known under the working title "EMV", spec has adorned, so here are already issued cards and solutions in the market are not taken into account.

It has been shown that some of these cards for the most part the same hardware facilities use, but through different software programs and protocols and specific security modules in the the chip card receiving terminal are different. Accordingly, solutions have been known in which a Chipkar ten terminal, which holds the chip card during a payment gangs operated with a number of different soft commodity modules and several secure unit modules are connected. However, this solution is because expensive and inflexible, not for the nationwide Suitable for use.

The object of the invention is therefore to provide a solution ben, where a large number of different ner chip cards is applicable without each terminal for all of these chip cards must be equipped.

Presentation of the invention

The invention uses smart card terminals connected to a open data transmission network are connected, through which they are tamper-proof with various processors Can connect, being off the type of transaction, determined by the chip card, the processor is determined.

Brief description of the drawings

Show it

Fig. 1 is a schematic overview of the Components th in a transaction processing with an IC card according to the invention,

Fig. 2 is a Fig. 1 corresponding representation of the Stan of the art.

Description of the invention

In Fig. 2, a known arrangement for Transaktionsab processing payments with smart cards is shown. In the following, payments represent all types of transactions in which value is placed on reliable processing. As chip cards such as ISO 7816-1, -2, -3 are used.

Chip cards 10 a, 10 b and 10 c can be connected to terminals 11 a, 11 b, 11 c. Each terminal contains a settler 13 a, 13 b1, 13 b2, 13 c, which is connected to a security module 14 a, 14 b1, 14 b2, 14 c. The configuration shown relates to two payment networks 15 a, 15 c, in which a host 16 a, 16 c in turn each contains a security module 17 a, 17 c and the hosts can exchange transaction data with one another via a further network 18 . Instead of security modules, the hosts can also be operated in a secure environment with, for example, strict access control and the keys can be stored on conventional data carriers. The networks 15 a, 15 c are, for example, X25 / Datex-P networks, mostly switched as closed user groups. The terminal 11 a is assigned to the host 16 a, the terminal 11 c to the host 16 c and can therefore only handle those processes that are supported by the host. As a rule, the respective processor 13 a, 13 c is specific to the provider or service, hereinafter also the type of transaction. The following hosts also represent hierarchical or meshed networks of computers for which the host represents the access and the interface.

Therefore, in order to make two different cards usable in the terminal 11 b for the two different services, two processors 13 b1, 13 b2 are provided in the terminal 11 b, each of which is connected to its own security module 14 b1, 14 b2 and in each case have their own, dedicated network connection to the respective network 15 a, 15 c.

As long as only a few terminals and few services are available are the effort of multiple unwinders in one Terminal possible.

The invention now separates the unwinder from the terminal and is arranged as shown in FIG. 1. Here, the terminals 11 a ', 11 b', 11 c 'no longer contain an unwinder of the previous type. It is only an operating program, which is not shown separately, the existing, which causes communication to the chip card 10 a, 10 b, 10 c and serves for a secure connection to various NEN handlers 13 a ', 13 c'.

An open network 12 takes over the data transfer between the terminals 11 a ', 11 b', 11 c 'and handlers 13 a', 13 c ', which in turn, as in the conventional way, via specific networks 15 a, 15 c with the hosts 16 a , 16 c interact. Via these networks, chip card terminals of a known type can also be operated.

This network 12 is preferably an open network, as represented by the Internet and the IP protocol family below. Due to the general availability and open architecture, it is easily possible for each of the terminals 11 a ', 11 b' and 11 c 'to reach each of the unwinders 13 a', 13 c '. As will be described in more detail, each terminal can now reach every processor and thus accept every chip card and process transactions, provided that only a suitable processor can be reached on the network. It is also useful to provide multiple From developers in one place as shown in Fig. 1 is shown for the scheduler 13 a ', because a plurality of terminals can access it and the unique in stallation of only a single scheduler immediately al len terminals available stands.

The operating program in the terminal must first determine the type of chip card, d. i.e. the service or the transaction log to be applied and thus one determine possible unwinder. This is done by Aus  read from the chip card. Chip cards can also have several Support services; in this case the terminal would have to ask the user what service to pay for if this cannot be decided implicitly. With a credit card with rechargeable electronic Purse could, for example, amounts under DM 20 in from the wallet and large amounts from the credit card ten function are debited.

A "uniform resource locator" (URL), for example, is then formed from the desired service. This can be determined from a table in the terminal or by requesting a processor. The use of a URL is advantageous in that it makes a table in the terminal unnecessary, because the network functions then determine the nearest handler for this service. A URL for an American Ex press gold credit card could then be

"https://de.amexco.com/credit/gold/Hamburg"

where "https" is the protocol for data transmission between terminal and handler. In the URL are, as can be seen in the example, both the status place in the computer name "de.amexco.com" as well as the City codable. By coding the computer name the Internet address may be via the au Thorized name server at the headquarters in the United States requests, but this can on a computer in German land, so that despite a central name administrator a decentralized processor is called.  

The use of a code for the Transak alone tion log in a computer name already offers one flexible form of connection from one terminal to another Unwinder.

A secure protocol is used to prevent manipulation such as deliberate falsification or spying. An example of such a protocol family is contained in the draft "The SSL Protocol Version 3.0" by AEFreier, Ph. Karlton and PC Kocher from March 1996, which, for. B. on 03/10/1997 at the URL

ftp://ietf.cnri.reston.va.us/internet-drafts/draft-freier-ssl-version3-01.txt

at the "Internet Engineering Task Force" (IEFT) could be opened. This protocol allows the use a variety of cryptographic protocols and Procedures to ensure mutual authenticity and the transmitted data against manipulation and failure secure hung.

Preferably, a security module 19 a is used in the terminal 11 a ', in which a secret key for the establishment of the SSL connection is stored, which is unique and characteristic of this terminal. In a known manner, in the case of a symmetrical method, this secret key is stored in a security module of each processor with which the terminal is to be able to establish a connection. However, asymmetrical methods are preferably used in which a private key is only stored in the security module of the terminal and the key derived therefrom is available as a so-called public key for processing and only has to be ensured for its authenticity by one of the known measures . The security module in the terminal is therefore primarily required to secure the connections to the handlers, while the security modules in the handlers are also used to secure the chip card transactions and the associated conventional key management.

In a development of the invention, the safe Security module of the terminal as a buffer storage for keys used together with program modules from one Ab winder. These program modules can then using those stored in the security module Keys to process a transaction locally with the chip card. If it is a money card, it will be Amounts are also, as is usual with a cash card, in the safe module and only cryptographically at the end of the day transmitted securely. The transmission takes place prefers to the processor who is responsible for the program Module and the associated key or keys via the ge secure network connection. To Lei performance can be handled in several ways ler exist, then in this sense as the same Handlers should apply.

Some card types can cover the entire transaction handle locally, but must after the end of the transaction Transaction record over a network to a central office be averaged. In this case too, the settlement  ler transmitted a program module and in the terminal which will then execute the transaction record sends its handler. It can make sense the program module and key for each transaction via the secure connection of the network instead of transferring the transaction steps individually gen. Especially in a datagram-oriented network works like the Internet, with the occasional delay then there is a waiting period possibly at the beginning or end of a transaction, but not between the individual transaction steps.

The program modules are based on conventional mas stored, but for security against deterioration signed and, if necessary, encrypted, the right key to verify the signature is also stored in the security module. The selection the program modules are done via the card type or egg derived code. Terminal and security mo dul can be viewed as a cache will. In particular, at least the security module partially serves as a buffer, one is practical any number of chip cards with the terminal usable and this number without maintenance work on the Terminal as it is adding another safe unit would mean dynamically expandable.

The "HTTP" protocol or its secured variant "HTTPS" allows a particularly simple option the buffering. In the document describing HTTP / 1.0 RFC 1945 by Bernes-Lee u. a., May 1996 edition, is in  Section 10.9 the addition "if-modified-since" is provided. A document requested in this way will only be transferred if it is and can be in a newer version can also be buffered to intermediate stations. So it is possible to add a program module including the required key pack, encrypt and sign and with one to be provided with a network name designated by a URL. The operating program determines when the chip card is inserted about the code of the card type a URL, adds the date of the existing, buffered version and sends one Request to the handler. Is the buffered version currently, only the response code "304" is transmitted, and uses the buffered version. Otherwise the transferred version unpacked, filed and executed.

In a further variant, the installa already program modules and keys in the termi nal are stored as if they were on a network connection was transferred and buffered. This is for previously frequently or predominantly used An a way to reduce the network load. You can also use an indicator in the buffer management mark these entries in such a way that a displacement be avoided in the buffer memory or not at all should. The respective request with the through the chip card certain processors whether there is a new version, is not affected and may replace the pre-stored version.

As described, the program module is preferred together with one or more keys from the processor  transfer the terminal. However, it is also possible to use Pro Manage gram modules and keys separately and hand to have if, for example, the increased network the increased flexibility.

Due to the restrictions on the chip card ge increased computing power in a terminal in the previously issued and reusable chip cards is not available, public key Procedure for securing data communication, ins especially the authentication and generation of session keys, are used. Further information on this can also the SSL document and the Li references are taken. For certification Public keys can be certificates, for example serve according to the X509.3 standard.

The security module can be used as a chip card or as GSM mobile phones known SIM module can be executed. Special designs are also based, for example of the chip SL 44CR80S from Siemens possible.

After the secure connection between the terminal and Is developed, the operating program mediates the communication between the processor and the chip card. In In most cases, data blocks from the Be drive program in the protocol of the network connection implemented and communicated transparently. In many cases however, communication with a user, i.e. the owner of the chip card, so that the Value of the transaction is displayed and the transaction  one can then confirm. For this purpose, on the ter Terminal input and output devices such as keyboard and on show provided. These are sent to the handler via the ge secured connection provided, because only the Unwinder has the authentic value for the Transak tion. Alternatively, the operating program can use this data from the communication between the chip card and the processor identify and display on their own and the confirmation transmit to the handler.

A personal computer can also serve as a terminal is equipped with a reading device for chip cards. The operating program of the terminal is on the processor of the PC and has additional access to the screen and the keyboard. This can in particular with interactive dialog, for example via an access to the Internet and the WorldWideWeb, a payment process be solved. It is particularly advantageous that the Invention for communication between chip card and Ab developers use the same data network, namely the Internet that can already be used for the interactive dialogue becomes. Preferably, the reading device for the Payment used chip card its own processor and a security module, preferably in the form of a wide one built-in chip card. The processor on the read facility takes over the communication between Chipkar te and unwinder and turns to the processor of the Personal computers for dialogues with the user.

If the security level that can be achieved for the Personal computer users may be acceptable  also on a special security module and a pro processor to be dispensed with on the reading device. This is the case when the PC is not general, but only few known people is accessible and a Ver falsification of the operating program is not to be feared, as it is in the home of a private user poses. For protection against manipulation of communication with the unwinder can also rely entirely on a permanent secret keys can be dispensed with, for example by se for communication session key according to Ver driving are formed by Diffie and Hellmann. Depending on Use case is conceivable that the authenticity of the Terminals for the handler is not essential as the actual transactions with the chip card will.

Instead of special terminals, for example in Ver binding with cash registers or personal computers can be a ter minal according to the invention also in a goods or Service machines, information terminals closed, be installed. Input and output units are then for example the selection buttons for a product and the Dispensing mechanism for the selected goods.

It is also conceivable that chip cards are issued, which as a further application the generation of session code for a secure internet connection for example the SSL protocol. So that is then on personal computers on the reading device for Chip cards are neither a dedicated processor nor a security unit necessary.  

Not shown in Fig. 1, each host 16 a, 16 c can also be connected to the open data network 12 and support the handler function directly, unless security considerations do not speak against it.

A particular advantage of the invention is that le diglich the handlers have to be adapted or additional handlers have to be provided, the networks 15 a, 15 c for transaction processing and the host applications 16 a, 16 c can remain unchanged and so that the previous applications can continue to be operated unchanged.

Because a terminal also in addition to a chip card reader with a magnetic card reader or a station wagon nation reader can be equipped is in a fort education expanded the operating program to include the Data of the magnetic track and any existing security safety features can be transferred to the handler. In order to can the previous, based on magnetic card Ver continue to be used. This applies in the same way also for chip cards without a processor that have a memory too allow reading and describing. To the extent that this Cards out of circulation can reduce the number of cards winders in the network can be reduced.

A safety advantage arises from the fact that for the transaction processing necessary secret key no longer have to be stored in the terminal. This has so far resulted in terminals in public Lineup were specially protected to attack everyone  to discourage the security module from the outset A successful attack on a security engine dul, which is only the communication between terminal and unwinders has less serious impact kungen as one on a conventional security dul. The processors can also use Hochlei as processes computing computers run so that a particularly fast Reaction is possible and a large number of unwinders can use a common fast security module nen.

Claims (20)

1. A method for processing transactions that are secured by a chip card that can be connected to a terminal that is connected to a data network, with the features:

• The terminal contains an operating program which, after connecting the chip card to the terminal, determines a code for a transaction procedure according to which the transaction is to be carried out.
• the processor's network address is determined from the code of the transaction process,
• - whereupon the operating program establishes a connection to the unwinder secured by cryptographic methods,
• - then processes the transaction through an intermediary between the chip card and the processor.

2. The method according to claim 1, wherein in particular for loading Confirmation of the transaction connected to the terminal its input and output units through the data link between the terminal and the processor for processing are usable. 3. The method of claim 1 or 2, wherein the unwinder both to secure the connection to the terminal as well as to secure transactions with the Chip card secured key at least one di directly connected security module.   4. The method according to claim 3, wherein the terminal for Secured the connection with the unwinder secured Key of a directly connected security mo duls used. 5. The method according to claim 4, wherein to secure the Connection between terminal and handler an on application of the chip card and a secured in the chip card stored key is used by means of which is a session key for further processing the transaction or a public one Key is verified. 6. The method according to any one of claims 1 to 5, wherein for Connection of terminal and handler a TCP / IP Pro tokoll is used. 7. The method according to claim 6, wherein to secure the TCP / IP connection using the SSL protocol. 8. The method according to any one of claims 1 to 7, wherein the Determination of the network address for the Transak suitable procedure by a contractor ask a processor assigned to the terminal is determined. 9. The method according to claim 1 to 7, wherein the determination the network address of one for the transaction process Ren suitable handler is determined by the fact that the code is part of the transaction process symbolic network address is used, which servers belonging to the network for the determinations network addresses is resolved.   10. The method according to any one of claims 2 to 9, wherein the Operating program of the terminal to the user a secret string asks for this against a reference value, in particular using of cryptographic procedures, verified and single Lich the result of the review on the secured Transfers connection to the handler. 11. The method according to any one of claims 1 to 9, wherein a program module from the unwinder by means of the connection transferred to the terminal and there instead of min at least part of the program code of the handler is performed. 12. The method according to any one of claims 4 to 9, wherein a key from the processor in the connection the security module is transmitted and to the gesi secured processing of at least part of a Transaction with the chip card is used. 13. The method of claim 11 or 12, wherein the of the Program modules or keys transferred to the processor stored in the manner of a buffer memory in the terminal and ver instead of retransmission be applied. 14. The method of claim 13, wherein prior to use of a buffered program module or key a request to the handler about the timeliness checks and, if necessary, a current version wear and will be used in the future.   15. The method according to claim 14, wherein to request with Check that the HTTP or HTTPS protocol is up to date is applied. 16. Arrangement for processing transactions that are secured by a chip card that can be connected to a terminal that is connected to a data network, with the features:

• The terminal contains a device that determines a code for the transaction method to be used by connecting the chip card to the terminal.
• - From the code, an addresser accessible via the data network is addressed by means of address mapping,
• the terminal contains a connection device which is able to establish a connection to the unwinder,
• - The terminal and the handler contain devices with which the connection between the terminal and handler can be secured against manipulation,
• - The processor contains facilities that allow transactions with the chip card to be processed securely through the intermediary of the terminal.

17. The arrangement according to claim 16, wherein the terminal input Contains output devices from the unwinder over the network while processing Transak tion can be used.   18. Arrangement according to claim 16 or 17, wherein the settlement at least one device for safe storage Secure cryptographic keys for both securing the connection to the operating program of the Terminals as well as for securing the transaction with the chip card contains. 19. The arrangement according to claim 18, wherein the terminal Device for the secure storage of keys for securing the connection with the development includes. 20. The arrangement according to claim 19, wherein the chip card Includes facility with which a session key for securing the connection between the terminal and Unwinders can be generated in the terminal.